I store all of my passwords in firefox’s built-in password manager. They auto-fill into websites, sync to my phone, notify me if one appears publicly, and I can generate strong new passwords conveniently. The pw vault is stored encrypted in the cloud as far as I know, but I don’t really know the technical details. I presume that it’s just as secure as using a “proper” manager.
Is there a problem with not using a dedicated password manager? I used to use LastPass but then… I stopped. And at the time I didn’t see anything wrong with just sticking with FF.
Using Firefox is fine right? If so, what’s the benefit of something like BitWarden/etc over the built-in one?
You can try KeePassXC and there’s an extension for Firefox that allows you to fill in the password fields, it matches the site with the URL in the KeePassXC entry.
well yes, as I said I’ve used browser extensions for dedicated managers before, and I’m aware of KeePass. But my question is more about whether that’s better somehow than firefox. i.e. more secure/convenient/etc. I ask because in my armchair experience the built-in one is completely fine and idk what the advantage of a dedicated manager is over the built-in one.
The question is two-fold. How secure do you want the password to be determines what system to use.
For example:
Banking - I never store a password or username for these. It’s always one I can remember. The password is lengthy, multi-factor authentification is turned on etc… I don’t trust any system.
Finanial webpages other than banks, , taxes, healthcare, etc, stuff that would hurt me personally if stolen, I use a stand alone password manager.
Anything else goes into Firefox password manager. Stuff I don’t give a fuck about if somebody hacks my password.